Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
File: 5PKoZiAvS4y8MzgtboLYHYlkyA4.mft (raw, json)
Hash identifier: fdkYI12cZIwG/aJpP2j0yJOjUQigiXAyNs5uPNTYp/k=
Subject key identifier: 6D:4C:70:C4:56:E8:7F:A8:A2:43:86:75:B1:78:F3:44:F6:8A:85:50
Authority key identifier: E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
Certificate issuer: /CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Certificate serial: 01969E9A198A1B61A3B590E0A04EDC1F43A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
Manifest number: 1524
Signing time: Mon 05 May 2025 04:00:21 +0000
Manifest this update: Mon 05 May 2025 04:00:21 +0000
Manifest next update: Tue 06 May 2025 04:00:21 +0000
Files and hashes: 1: 5PKoZiAvS4y8MzgtboLYHYlkyA4.crl (hash: mPyaOiPzrAcpF1KJ9UZ+mbPdJhV1jBvyRi5sFoQFGTI=)
2: DwTC30oaWKwssRCXrBoUlk9Q5bw.roa (hash: ijzA7vHvds3BxvrPMvxvhrjeIw/3n+d/qJzXMvHrD7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 04:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:9a:19:8a:1b:61:a3:b5:90:e0:a0:4e:dc:1f:43:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e
Validity
Not Before: May 5 04:00:21 2025 GMT
Not After : May 6 04:00:21 2025 GMT
Subject: CN=6d4c70c456e87fa8a2438675b178f344f68a8550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c2:70:bc:07:23:99:06:ff:29:c2:e2:76:71:
ff:fe:3e:5b:27:91:11:50:77:53:ca:dd:c5:58:67:
83:96:19:fe:ba:d7:a6:1f:89:53:84:32:cd:91:1a:
43:61:48:1b:f1:dd:d7:8e:3f:35:61:b8:d1:bc:5e:
c8:d2:c0:14:77:c4:d0:2c:97:73:93:fd:43:2d:62:
c5:52:46:59:7f:db:72:1a:64:b3:77:e6:27:ff:7c:
77:09:1e:98:db:d2:72:54:a2:31:b1:b0:fd:e9:f7:
6b:62:ea:21:33:17:27:6d:d8:7e:e5:77:8e:20:f4:
82:4b:7b:23:c9:4d:52:da:96:a4:fa:12:6f:8b:4d:
d6:fb:dd:e2:b0:71:4d:f8:90:c3:3c:07:b2:8f:87:
8d:cf:72:96:c5:7a:f3:cf:eb:9c:38:b2:40:1a:1f:
7a:1c:21:47:8e:a0:40:8c:99:d1:3d:fb:7f:eb:85:
4f:af:5d:df:9b:e6:e1:ad:18:7a:35:f1:2f:1b:da:
59:cd:ed:37:f5:c9:f7:a1:2a:e6:d4:79:a2:fa:f7:
7b:2a:cb:ee:9f:0d:59:7f:9e:48:a7:ba:be:ca:a2:
f2:0d:b1:8c:bc:96:43:a8:1d:10:37:61:11:57:60:
e3:7c:89:f3:e9:74:a2:78:1f:ad:ad:87:d7:30:3e:
86:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:4C:70:C4:56:E8:7F:A8:A2:43:86:75:B1:78:F3:44:F6:8A:85:50
X509v3 Authority Key Identifier:
keyid:E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:17:76:97:39:37:a3:23:4e:69:d8:8e:29:97:1e:19:72:64:
c6:40:ba:3b:3f:f7:23:e8:6c:a0:ef:a7:95:fd:07:1f:b9:16:
97:17:d1:b9:82:bf:c9:3d:95:50:f1:3a:1a:88:15:6e:12:9b:
a1:ad:50:09:e0:da:44:d0:41:3e:5f:6c:39:06:ba:ac:11:cd:
eb:d8:ab:6c:89:9c:0c:ec:ae:4d:9e:14:4e:91:b6:c0:cd:ec:
7b:e9:91:09:06:ce:2f:6c:ff:12:55:4e:84:f6:9b:25:5a:86:
1b:65:1c:bc:33:87:a6:d6:2b:f3:a8:ab:90:98:49:73:1a:93:
33:a6:d3:2b:e6:8a:c5:30:64:b0:2a:83:03:cd:6b:8c:ae:32:
57:9d:44:9a:35:ea:59:d0:17:21:bc:60:a7:e5:3e:74:5e:b2:
83:45:b0:c5:fb:dd:af:71:93:1b:a0:e7:b3:94:c8:41:5c:83:
ce:0d:28:34:6b:7b:15:f1:6c:0d:1a:26:1e:25:36:6b:62:e6:
5f:1e:c1:17:81:61:1d:60:57:3f:3c:95:03:fe:95:72:30:0a:
e8:c7:6a:6c:ae:6e:f9:68:d3:ce:89:45:00:d4:76:d5:43:66:
a0:c2:70:5f:56:f5:5d:4e:25:8d:b1:e7:21:a1:6c:cb:0d:ff:
02:b9:08:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 13:19:40 2025 by rpki-client